Adding radius attributes in PEAP

Manuel Sánchez Cuenca msc at
Tue Jun 26 12:00:22 CEST 2007

Hello all,

I'm trying to add a radius attribute in the final ACCEPT message to the

To do this, in the file "/modules/rlm_eap/types/rlm_eap_peap/peap.c" I
have included in the "process_reply" function the following code

                DEBUG2("  PEAP: Tunneled authentication was successful.");
                t->status = PEAP_STATUS_SENT_TLV_SUCCESS;
                eappeap_success(handler, tls_session);

                /* Include the handle attribute */
                VALUE_PAIR *aux;
                aux = pairmake("attribute", "value", T_OP_EQ);
                pairadd(&request->reply->vps, aux);

but then, when the user tries to access, the RADIUS server shows this error:

    rlm_eap_peap: SUCCESS

    rlm_eap: reply code 0 is unknown, Rejecting the request.

    rlm_eap: Freeing handler

    modcall[authenticate]: module "eap" returns reject for request 8

I Solved this problem including in my code this line:

            handler->eap_ds->request->code = PW_EAP_SUCCESS;

And now the server sends Access-Accept, but without the new attribute.

  rlm_eap_peap: SUCCESS
  rlm_eap: Freeing handler
  modcall[authenticate]: module "eap" returns ok for request 17
modcall: leaving group authenticate (returns ok) for request 17
Sending Access-Accept of id 17 to port 1814
        EAP-Message = 0x030a0004
        Message-Authenticator = 0x00000000000000000000000000000000
        User-Name = "lolo"
        Proxy-State = 0x3935

Does anybody knows why the attribute is not being included in the response?

Thanks in advance.

Manuel Sanchez Cuenca
Departamento de Ingenieria de la Informacion y las Comunicaciones
Facultad de Informatica. Universidad de Murcia
Campus de Espinardo - 30080 Murcia (SPAIN)
Tel.: +34-968-364644    Fax: +34-968-364151
email: msc at  |  manuelsc at

More information about the Freeradius-Devel mailing list